Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
763
Views
0
Helpful
2
Replies

Microsoft Exchange login attempts and IPS

zacmutrux
Level 1
Level 1

‎05-23-2008 04:48 PM - edited ‎03-10-2019 04:07 AM

I have clients running Exchange Server 2003. More than one of them are plagued by (presumably) scripted attempts to log in to their SMTP server, using a long list of common American names.

Please forgive what is undoubtedly a basic question--but can the IPS features in the Cisco PIX 501 be used to fend off an attack like this? And if so, can you point me in the right direction for configuring this feature?

Thanks much,

Zac Mutrux

Labels:
0 Helpful
2 Replies 2

suschoud
Cisco Employee
Cisco Employee

‎05-26-2008 11:20 AM

Zac,

unfortunately,the ids feature in pix is not advanced enough to locate such attacks.

I would suggest aip-ssm module in asa's or a dedicated ids/ips box to take care of millions of attacks and vulnerabilities ot there.

Regards,

Sushil

Cisco TAC.

0 Helpful

zacmutrux
Level 1
Level 1
In response to suschoud

‎05-26-2008 11:43 AM

Well that's too bad, but thanks for your reply just the same.

Zac

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card